TikTok vulnerability lets hackers inject fake coronavirus videos into your account

TikTok vulnerability lets hackers inject fake coronavirus videos into your account

Picture this: you’re scrolling through your TikTok feed one day and all of a sudden, you notice a video that you did not upload posted to your account.

It’s very possible, as a team of software developers discovered a vulnerability on the viral social video platform that allows an attacker to swap videos on any TikTok account.

A screenshot of a fake coronavirus video that was swapped with a real one from TikTok's own official account.

A screenshot of a fake coronavirus video that was swapped with a real one from TikTok’s own official account.

Image: mysk.blog

In a post sharing their findings, developers Tommy Mysk and Talal Haj Bakry explain that TikTok uses Content Delivery Networks, or CDNs, in order to more effectively transfer their data around the world. To improve performance, these CDNs transfer the data over HTTP.  Read more…

More about Videos, Hackers, Vulnerability, Tiktok, and Coronavirus